Legal notice

WEBSITE PRIVACY POLICY

www.secretswomen.com

I. PRIVACY AND DATA PROTECTION POLICY

In compliance with current legislation, Secretswomen (hereinafter also referred to as the “Website”) undertakes to adopt the necessary technical and organizational measures, in accordance with the appropriate level of security for the risk of the data collected.

Laws Incorporated into this Privacy Policy

This Privacy Policy is adapted to current Spanish and European regulations regarding the protection of personal data on the internet. Specifically, it complies with the following legal provisions:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation – GDPR).

  • Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPD-GDD).

  • Royal Decree 1720/2007, of December 21, approving the Regulation for the development of Organic Law 15/1999, of December 13, on the Protection of Personal Data (RDLOPD).

  • Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce (LSSI-CE).

Identity of the Data Controller

The Data Controller of the personal data collected on Secretswomen is Rafael Jorgen Bjurenlind Perez, holder of NIF: 51027650B (hereinafter, the “Data Controller”).

Contact details:
Address: C/ Joaquín Belon 2, Postal Code 35013, Las Palmas de Gran Canaria, Spain
Email: secretsswomen@gmail.com

Record of Personal Data

In compliance with the provisions of the GDPR and LOPD-GDD, we inform you that the personal data collected by Secretswomen through the forms on its web pages will be incorporated into our database and processed for the purpose of facilitating, expediting, and fulfilling the commitments established between Secretswomen and the User, or maintaining the relationship established in the forms completed by the User, or responding to a request or inquiry from the User.

Likewise, in accordance with the GDPR and LOPD-GDD, unless the exception provided for in Article 30.5 of the GDPR applies, a record of processing activities is maintained that specifies, according to their purpose, the processing activities carried out and other circumstances established in the GDPR.

Principles Applicable to the Processing of Personal Data

The processing of the User’s personal data shall be subject to the following principles, as set out in Article 5 of the GDPR and Articles 4 and following of Organic Law 3/2018 of December 5, on the Protection of Personal Data and guarantee of digital rights:

  • Lawfulness, fairness, and transparency: The User’s consent will be required at all times, following full transparency regarding the purposes for which the personal data are collected.

  • Purpose limitation: Personal data shall be collected for specific, explicit, and legitimate purposes.

  • Data minimization: Only the personal data strictly necessary for the purposes for which they are processed will be collected.

  • Accuracy: Personal data must be accurate and kept up to date at all times.

  • Storage limitation: Personal data shall only be retained for as long as necessary for the purposes of their processing.

  • Integrity and confidentiality: Personal data shall be processed in a way that ensures their security and confidentiality.

  • Accountability: The Data Controller shall be responsible for ensuring compliance with all the above principles.

Categories of Personal Data

The categories of data processed on Secretswomen are solely identification data. Under no circumstances are special categories of personal data processed within the meaning of Article 9 of the GDPR.

Special categories of personal data refer to information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for unique identification of a natural person, health data, or data concerning a natural person’s sex life or sexual orientation.

Processing of special categories of personal data shall always require the explicit consent of the User for one or more specific purposes.

Legal Basis for Processing Personal Data

The legal basis for the processing of personal data is consent. Secretswomen undertakes to obtain the User’s express and verifiable consent for the processing of their personal data for one or more specific purposes.

The User has the right to withdraw consent at any time. Withdrawal of consent shall be as easy as granting it. As a general rule, withdrawal of consent shall not condition the use of the Website.

In cases where the User must or may provide personal data via forms to make inquiries, request information, or for reasons related to the Website’s content, the User will be informed whether completing any of these forms is mandatory, as such data may be essential for the proper development of the requested operation.

Purposes of Processing Personal Data

Personal data are collected and managed by Secretswomen for the purpose of facilitating, expediting, and fulfilling the commitments established between the Website and the User, or maintaining the relationship established in the forms completed by the User, or responding to a request or inquiry.

Likewise, data may be used for commercial, operational, and statistical purposes, and for activities related to the corporate purpose of Secretswomen, including data extraction, storage, and marketing analysis to tailor content offered to the User and improve the quality, operation, and navigation of the Website.

At the time of obtaining personal data, the User shall be informed of the specific purposes for which the data will be processed.

Retention Periods for Personal Data

Personal data shall only be retained for the minimum period necessary for the purposes of their processing and, in any case, for the following period: 12 months, or until the User requests deletion.

When personal data are obtained, the User shall be informed of the period during which the data will be retained, or, when this is not possible, the criteria used to determine this period.

Recipients of Personal Data

User personal data shall not be shared with third parties.

In any case, at the time of data collection, the User shall be informed of the recipients or categories of recipients of the personal data.

If the Data Controller intends to transfer personal data to a third country or international organization, the User shall be informed of the third country or international organization and the existence or absence of an adequacy decision by the European Commission.

Personal Data of Minors

In compliance with Articles 8 of the GDPR and 7 of Organic Law 3/2018, only persons aged 14 or older may lawfully consent to the processing of their personal data by Secretswomen. For minors under 14 years of age, the consent of parents or legal guardians will be required, and processing shall only be lawful to the extent that such consent has been provided.

Confidentiality and Security of Personal Data

Secretswomen undertakes to adopt the necessary technical and organizational measures, in accordance with the appropriate level of security for the risk of the data collected, to ensure the security of personal data and prevent accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

The Website is equipped with an SSL (Secure Socket Layer) certificate, ensuring that personal data are transmitted securely and confidentially, as data transmission between the server and the User is fully encrypted.

However, since Secretswomen cannot guarantee the absolute invulnerability of the internet or the total absence of hackers or other unauthorized parties gaining fraudulent access to data, the Data Controller undertakes to promptly inform the User without undue delay when a personal data breach occurs that is likely to result in a high risk to the rights and freedoms of natural persons.

Personal data shall be treated as confidential by the Data Controller, who undertakes to ensure, through legal or contractual obligations, that such confidentiality is respected by employees, partners, and any person to whom the information is made accessible.

Rights Derived from the Processing of Personal Data

The User has the following rights under the GDPR and Organic Law 3/2018:

  • Right of access: To obtain confirmation as to whether Secretswomen is processing the User’s personal data and, if so, access such data and relevant processing information.

  • Right to rectification: To have inaccurate or incomplete personal data corrected.

  • Right to erasure (“right to be forgotten”): To have personal data deleted when they are no longer necessary, consent is withdrawn, processing is unlawful, or in other cases provided by law.

  • Right to restriction of processing: To limit processing under certain circumstances (e.g., data accuracy disputed, unlawful processing, or pending objections).

  • Right to data portability: To receive personal data in a structured, commonly used, and machine-readable format, and transmit them to another controller.

  • Right to object: To object to processing of personal data at any time.

  • Right not to be subject to automated decision-making, including profiling: To not be subject to a decision based solely on automated processing.

Users may exercise their rights by submitting a written communication to the Data Controller with the reference “GDPR – www.secretswomen.com”, specifying:

  • Name, surname(s), and a copy of the User’s ID or equivalent document.

  • Specific request or information being sought.

  • Address for notifications.

  • Date, signature, and supporting documentation, if applicable.

This request and any accompanying documents may be sent to the following address or email:

Postal address: C/ Joaquín Belon 2, CP 35013 Las Palmas de Gran Canaria, Spain
Email: secretsswomen@gmail.com

Links to Third-Party Websites

The Website may include hyperlinks or links to third-party websites that are not operated by Secretswomen. The owners of such websites will have their own privacy policies, and they are responsible for their own files and privacy practices.

Complaints to the Supervisory Authority

If the User believes there is a problem or breach of current regulations in the way personal data are being processed, they shall have the right to effective judicial protection and to file a complaint with a supervisory authority, particularly in the Member State of their habitual residence, place of work, or place of the alleged infringement. In Spain, the supervisory authority is the Spanish Data Protection Agency (AEPD): https://www.aepd.es.

II. ACCEPTANCE AND CHANGES TO THIS PRIVACY POLICY

It is necessary for the User to have read and agree with the conditions regarding the protection of personal data contained in this Privacy Policy, and to consent to the processing of their personal data for the purposes, duration, and terms indicated herein. The use of the Website implies acceptance of this Privacy Policy.

Secretswomen reserves the right to modify its Privacy Policy at its sole discretion, or as a result of legislative, jurisprudential, or doctrinal changes by the Spanish Data Protection Agency. Changes or updates to this Privacy Policy will not be explicitly notified to the User. Users are encouraged to review this page periodically to stay informed of the latest updates.

This Privacy Policy has been updated to comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and Organic Law 3/2018 of 5 December, on the Protection of Personal Data and guarantee of digital rights.

This Website Privacy Policy document was created using a free online privacy policy template generator on October 14, 2025.